A cybersecurity analyst is reviewing a vulnerability scan report that lists thousands of findings across the enterprise. The report details the CVSS score, the number of hosts affected by each vulnerability, and the estimated effort to deploy the corresponding patches. To create an effective remediation plan for the security operations team, which of the following should be the primary factor guiding the prioritization strategy?
The primary factor for guiding a vulnerability prioritization strategy is the risk score. While the number of affected hosts and the complexity or effort of mitigation are important considerations, the risk score provides a more comprehensive measure of the potential danger a vulnerability poses. It typically combines the base severity (like a CVSS score), temporal factors (like exploit availability), and environmental factors (like the criticality of the affected asset), offering the most holistic view of the immediate threat. Therefore, it should be the main driver for prioritization.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a risk score in the context of vulnerability management?
Open an interactive chat with Bash
Why is the risk score prioritized over other factors like number of affected hosts?
Open an interactive chat with Bash
How is the complexity of mitigation factored into vulnerability prioritization?